[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security: FreeBSD vs OpenBSD

To: "David S." <davids@idiom.com>, misc@openbsd.org
Subject: Re: Security: FreeBSD vs OpenBSD
From: Chris <cl@escape.ca>
Date: Mon, 04 Feb 2002 03:12:30 -0600
References: <4.3.2.7.2.20020204020342.01d2a2e8@pop.escape.ca> <20020204044315.GA2416@hades.shoptime.com> <200202040731.SAA17751@caligula.anu.edu.au> <4.3.2.7.2.20020204020342.01d2a2e8@pop.escape.ca>

Yes, because obviously we can either have a packet filter on *each and 
every* machine on the network, or on none at all.  There never, ever, could 
be a bunch of machines with no packet filters running behind some kind of 
crazy barrier machine that would serve as some kind of buffer between the 
servers and the Internet.  I like to call this crazy buffering machine a 
"firewall", but I don't think the term is very common.

Chris

At 12:43 AM 04/02/2002 -0800, David S. wrote:
> >  From an administration, security, and policy standpoint running a packet
> > filter on every machine seems like a fine idea to me.  Could there be
> > performance issues though?
>
>Yes, your servers will DoS eBay, CNN, or some other hapless web site much
>more effectively without pesky packet filter to get in the way.
>
>David S.

Follow-Ups:
- Re: Security: FreeBSD vs OpenBSD
  - From: "Generic Player" <suck@my-balls.com>

References:
- Re: Security: FreeBSD vs OpenBSD
  - From: Chris <cl@escape.ca>
- Re: Security: FreeBSD vs OpenBSD
  - From: Luiz Gustavo <gustavo@shoptime.com>
- Re: Security: FreeBSD vs OpenBSD
  - From: Darren Reed <avalon@coombs.anu.edu.au>
- Re: Security: FreeBSD vs OpenBSD
  - From: "David S." <davids@idiom.com>

Prev by Date: Re: correct addition of new manpages
Next by Date: Re: Security: FreeBSD vs OpenBSD
Prev by thread: Re: Security: FreeBSD vs OpenBSD
Next by thread: Re: Security: FreeBSD vs OpenBSD
Index(es):
- Date
- Thread